Skip to content

Commit 069fea4

Browse files
committed
Update dependencies
1 parent 0949462 commit 069fea4

7 files changed

Lines changed: 414 additions & 396 deletions

File tree

client/pnpm-lock.yaml

Lines changed: 12 additions & 10 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

client/pnpm-workspace.yaml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -25,3 +25,7 @@ overrides:
2525
picomatch@<4: 2.3.2
2626
picomatch@>=4: 4.0.4
2727
fork-ts-checker-webpack-plugin>schema-utils: 4.3.3
28+
# GHSA-q8mj-m7cp-5q26
29+
qs@<6.15.2: 6.15.2
30+
# GHSA-58qx-3vcg-4xpx
31+
ws@>=8.0.0 <8.20.1: 8.20.1

client/sbom/.lock-hash

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1 +1 @@
1-
a942f2787e67fef9d418edd23d750c17de29a3863705c722e9e2a2cdd8cab2be
1+
d7d204efeca702dd5b32b9cf486e36f879c045675f8dcdbe3af008b635778f52

client/sbom/bom.json

Lines changed: 14 additions & 14 deletions
Original file line numberDiff line numberDiff line change
@@ -14980,17 +14980,17 @@
1498014980
{
1498114981
"type": "library",
1498214982
"name": "qs",
14983-
"version": "6.15.1",
14984-
"purl": "pkg:npm/qs@6.15.1",
14985-
"bom-ref": "pkg:npm/qs@6.15.1",
14983+
"version": "6.15.2",
14984+
"purl": "pkg:npm/qs@6.15.2",
14985+
"bom-ref": "pkg:npm/qs@6.15.2",
1498614986
"externalReferences": [
1498714987
{
1498814988
"type": "distribution",
14989-
"url": "https://registry.npmjs.org/qs/-/qs-6.15.1.tgz",
14989+
"url": "https://registry.npmjs.org/qs/-/qs-6.15.2.tgz",
1499014990
"hashes": [
1499114991
{
1499214992
"alg": "SHA-512",
14993-
"content": "e981c41512fd99f81c02faa5fd78704ef7f98ca70e8a2ba9b761622711e4897d73e23ed62fc27f8d11d82e5b8e46f7355f1079ad5db42a878ad3481525a9aca6"
14993+
"content": "473ab4284c97ff0fed1326e770381d919ac981552c50c937c63877b796efdd2d474c0b60fae398b7bdbe65fc2243029dcac4e191305d2ffad38ba1c3997f4377"
1499414994
}
1499514995
]
1499614996
}
@@ -18172,17 +18172,17 @@
1817218172
{
1817318173
"type": "library",
1817418174
"name": "ws",
18175-
"version": "8.20.0",
18176-
"purl": "pkg:npm/ws@8.20.0",
18177-
"bom-ref": "pkg:npm/ws@8.20.0",
18175+
"version": "8.20.1",
18176+
"purl": "pkg:npm/ws@8.20.1",
18177+
"bom-ref": "pkg:npm/ws@8.20.1",
1817818178
"externalReferences": [
1817918179
{
1818018180
"type": "distribution",
18181-
"url": "https://registry.npmjs.org/ws/-/ws-8.20.0.tgz",
18181+
"url": "https://registry.npmjs.org/ws/-/ws-8.20.1.tgz",
1818218182
"hashes": [
1818318183
{
1818418184
"alg": "SHA-512",
18185-
"content": "b00b7c06180d6f30ad8066edd8ec66a6eaf23badd9a0393fb2a681ff39d09bde13e1f084b32ff257eec2742d64261394f656e800453b47792abaec9c0e889b54"
18185+
"content": "22de1d3b42b9bfffc9b535ee3e47c439a237b9437cee260f9eaa3f673a82a06de0f2e840eba41432cfd2accd182bbfcd02efabe0b321ffd76ad80ee4fab1ecfb"
1818618186
}
1818718187
]
1818818188
}
@@ -20696,7 +20696,7 @@
2069620696
"pkg:npm/parseurl@1.3.3",
2069720697
"pkg:npm/path-to-regexp@0.1.13",
2069820698
"pkg:npm/proxy-addr@2.0.7",
20699-
"pkg:npm/qs@6.15.1",
20699+
"pkg:npm/qs@6.15.2",
2070020700
"pkg:npm/range-parser@1.2.1",
2070120701
"pkg:npm/send@0.19.2",
2070220702
"pkg:npm/serve-static@1.16.3",
@@ -22298,7 +22298,7 @@
2229822298
"dependsOn": []
2229922299
},
2230022300
{
22301-
"ref": "pkg:npm/qs@6.15.1",
22301+
"ref": "pkg:npm/qs@6.15.2",
2230222302
"dependsOn": [
2230322303
"pkg:npm/side-channel@1.1.0"
2230422304
]
@@ -23193,7 +23193,7 @@
2319323193
"pkg:npm/html-escaper@3.0.3",
2319423194
"pkg:npm/opener@1.5.2",
2319523195
"pkg:npm/sirv@3.0.2",
23196-
"pkg:npm/ws@8.20.0"
23196+
"pkg:npm/ws@8.20.1"
2319723197
]
2319823198
},
2319923199
{
@@ -23332,7 +23332,7 @@
2333223332
"dependsOn": []
2333323333
},
2333423334
{
23335-
"ref": "pkg:npm/ws@8.20.0",
23335+
"ref": "pkg:npm/ws@8.20.1",
2333623336
"dependsOn": []
2333723337
},
2333823338
{

server/build.gradle

Lines changed: 15 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -18,6 +18,10 @@ description = "Thesis Management"
1818

1919
// Override Spring Boot-managed Tomcat to pull in security fixes ahead of the next BOM release.
2020
ext["tomcat.version"] = "11.0.22"
21+
// Override Spring Boot-managed Netty to pick up fixes for GHSA-mj4r-2hfc-f8p6,
22+
// GHSA-cm33-6792-r9fm, GHSA-2c5c-chwr-9hqw, GHSA-45q3-82m4-75jr, GHSA-rwm7-x88c-3g2p,
23+
// and the netty-codec-http advisories (GHSA-38f8-5428-x5cv, GHSA-57rv-r2g8-2cj3, GHSA-f6hv-jmp6-3vwv, ...).
24+
ext["netty.version"] = "4.2.13.Final"
2125

2226
gitProperties {
2327
// The plugin walks up from the project dir to auto-detect the .git
@@ -128,6 +132,17 @@ dependencies {
128132
testRuntimeOnly "org.junit.platform:junit-platform-launcher:${junit_version}"
129133
}
130134

135+
// Force a non-vulnerable plexus-utils across all configurations (Checkstyle's Doxia pulls in 3.3.0,
136+
// which is affected by GHSA-6fmv-xxpf-w3cw).
137+
configurations.configureEach {
138+
resolutionStrategy.eachDependency { details ->
139+
if (details.requested.group == "org.codehaus.plexus" && details.requested.name == "plexus-utils") {
140+
details.useVersion("3.6.1")
141+
details.because("GHSA-6fmv-xxpf-w3cw")
142+
}
143+
}
144+
}
145+
131146
springBoot {
132147
buildInfo()
133148
}

server/sbom/.input-hash

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1 +1 @@
1-
d24142a26cd228d759867102be17b41ec80bb6e92f12a0a73c73b9e1d0a1eefe
1+
a548116454fcdcedfdfb9edc68a8ea9bfe5fd764922b3ed5247255188bac5291

0 commit comments

Comments
 (0)